UbuntuUpdates.org

Package "wpa"

Name: wpa

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • EAPoL testing utility
  • access point and authentication server for Wi-Fi and Ethernet
  • graphical user interface for wpa_supplicant
Latest version: 2:2.10-21ubuntu0.2
Release: noble (24.04)
Level: security
Repository: universe

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "wpa" in Noble

Repository Area Version
base universe 2:2.10-21build4
base main 2:2.10-21build4
security main 2:2.10-21ubuntu0.2
updates main 2:2.10-21ubuntu0.2
updates universe 2:2.10-21ubuntu0.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2:2.10-21ubuntu0.2 2025-03-03 23:07:02 UTC

  wpa (2:2.10-21ubuntu0.2) noble-security; urgency=medium

  * SECURITY UPDATE: Encrypted element reusage.
    - debian/patches/CVE-2022-37660.patch: Add hostapd_dpp_pkex_clear_code()
      and wpas_dpp_pkex_clear_code(), and clear code reusage in
      ./src/ap/dpp_hostapd.c and ./wpa_supplicant/dpp_supplicant.c
    - CVE-2022-37660

 -- Hlib Korzhynskyy <email address hidden> Fri, 21 Feb 2025 17:33:52 -0330
Source diff to previous version
CVE-2022-37660 In hostapd 2.10 and earlier, the PKEX code remains active even after a successful PKEX association. An attacker that successfully bootstrapped public

Version: 2:2.10-21ubuntu0.1 2024-08-06 19:07:19 UTC

  wpa (2:2.10-21ubuntu0.1) noble-security; urgency=medium

  * SECURITY UPDATE: loading arbitrary shared objects, privilege escalation
    - debian/patches/lib_engine_trusted_path.patch: Allow shared objects
      to only be loaded from /usr/lib, thanks to mdeslaur
    - CVE-2024-5290

 -- Sudhakar Verma <email address hidden> Fri, 02 Aug 2024 17:36:25 +0530


About   -   Send Feedback to @ubuntu_updates